You are here

US Warns of Hacking Campaign Against Nuclear, Energy Firms

US Warns of Hacking Campaign Against Nuclear, Energy Firms

The US government warned industrial firms this week about a hacking campaign targeting nuclear and energy sectors, the latest event to highlight the power industry's vulnerability to cyberattacks.
Since at least May, hackers used tainted "phishing" emails to "harvest credentials" so they could gain access to networks of their targets, according to a joint report from the US Department of Homeland Security and Federal Bureau of Investigation, Reuters reported.
The report provided to the industrial firms was reviewed by Reuters on Friday. While disclosing attacks and warning that in some cases hackers succeeded in compromising the networks of their targets, it did not identify any specific victims.
"Historically, cyber actors have strategically targeted the energy sector with various goals ranging from cyber espionage to the ability to disrupt energy systems in the event of a hostile conflict," the report said.
Homeland Security and FBI officials could not be reached for comment on the report, which was dated June 28.
A virus dubbed "NotPetya" emerged on Tuesday, spreading from initial infections in Ukraine to businesses around the globe. It encrypted data on infected machines, rendering them inoperable and disrupting activity at ports, law firms and factories.
On Tuesday, the energy-industry news site E&E News reported that US investigators were looking into cyber intrusions this year at multiple nuclear power generators.
Reuters has not confirmed details of the E&E News report, which said there was no evidence safety systems had been compromised at affected plants.
The activity described in the US government report comes at a time when industrial firms are particularly anxious about threat that hackers pose to their operations.
Industrial firms, including power providers and other utilities, have been particularly worried about the potential for destructive cyberattacks since December 2016, when hackers cut electricity in Ukraine. US nuclear power generators PSEG, SCANA Corp and Entergy Corp said they were not impacted by the recent cyberattacks.
SCANA's V.C. Summer nuclear plant in South Carolina shut down on Thursday due to a problem with a valve in the non-nuclear portion of the plant, a spokesman said.